diff options
| author | Ermal <eri@pfsense.org> | 2012-06-05 19:38:04 +0000 |
|---|---|---|
| committer | Ermal <eri@pfsense.org> | 2012-06-05 19:38:04 +0000 |
| commit | 5b4ee05e58777606c988c099139adb25633b50c3 (patch) | |
| tree | 4be39de1d98dadcf8e1803d07302e760692636e6 /usr/local/sbin | |
| parent | 1492e02cb4f48de3ff33ed4d4db013aac00087d3 (diff) | |
| download | pfsense-5b4ee05e58777606c988c099139adb25633b50c3.zip pfsense-5b4ee05e58777606c988c099139adb25633b50c3.tar.gz | |
Import OpenVPN cisco style radius attributes applying policy to logged in users. Feature #2100
Diffstat (limited to 'usr/local/sbin')
| -rw-r--r-- | usr/local/sbin/openvpn.attributes.sh | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/usr/local/sbin/openvpn.attributes.sh b/usr/local/sbin/openvpn.attributes.sh new file mode 100644 index 0000000..b88d1df --- /dev/null +++ b/usr/local/sbin/openvpn.attributes.sh @@ -0,0 +1,16 @@ +#!/bin/sh + +echo $script_type > /tmp/script +if [ "$script_type" = "client-connect" ]; then + if [ -f /tmp/$common_name ]; then + /bin/cat /tmp/$common_name > $1 + /bin/rm /tmp/$common_name + fi +elif [ "$script_type" = "client-disconnect" ]; then + command="/sbin/pfctl -a 'openvpn/$common_name' -F rules" + eval $command + /sbin/pfctl -k $ifconfig_pool_remote_ip + /sbin/pfctl -K $ifconfig_pool_remote_ip +fi + +exit 0 |
